Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PUMO/BWmC7PmS5lwU4L1AX0t35MyJX5Q.roa
File: BWmC7PmS5lwU4L1AX0t35MyJX5Q.roa (raw, json)
Hash identifier: O30pyaKMIDqmm8lKA7V3AaBgxyfxpzYTrBME/82WvpM=
Subject key identifier: 05:69:82:EC:F9:92:E6:5C:14:E0:BD:40:5F:4B:77:E4:CC:89:5F:94
Certificate issuer: /CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Certificate serial: 0892
Authority key identifier: 34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/BWmC7PmS5lwU4L1AX0t35MyJX5Q.roa
Signing time: Fri 11 Dec 2020 08:52:22 +0000
ROA not before: Fri 11 Dec 2020 08:52:22 +0000
ROA not after: Wed 29 Sep 2021 09:51:23 +0000
asID: 198949
IP address blocks: 124.150.129.0/24 maxlen: 24
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 2194 (0x892)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=34DD432961AC42D644AEAF34B14AEC70275B06A3
Validity
Not Before: Dec 11 08:52:22 2020 GMT
Not After : Sep 29 09:51:23 2021 GMT
Subject: CN=056982ECF992E65C14E0BD405F4B77E4CC895F94
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c4:c4:10:b4:1b:1f:85:63:6d:b2:4d:5f:18:7c:
ca:10:96:a9:22:8a:15:01:ff:59:00:5c:63:7e:88:
e6:db:e0:4f:f6:d7:14:5b:85:51:c8:f6:7a:f8:78:
c6:e1:55:66:bb:a8:65:15:63:a8:7d:2f:32:75:a3:
03:32:b0:ae:cc:4e:e1:3c:57:05:82:1e:0e:49:45:
0f:55:b1:d1:fe:5a:ae:62:91:a4:21:97:08:5b:1d:
4c:83:4e:4e:e1:b2:f4:cc:a2:e2:0d:bc:48:e2:c3:
32:7a:9b:8d:34:d1:ce:cd:ef:9d:07:a5:42:88:65:
b5:71:1a:8a:97:41:bc:39:d2:32:65:cc:36:a2:b2:
03:4d:e7:d4:00:28:4d:3f:cd:e2:38:75:9b:bc:a8:
93:43:af:57:ca:89:46:14:f0:17:e1:5c:95:aa:ff:
c2:5e:56:9e:37:1a:c5:bf:c9:8a:32:c1:fa:c7:e6:
c5:e7:11:5f:1f:02:14:1b:fe:64:59:f0:99:6b:62:
fc:8a:44:57:7f:0c:ef:df:a9:6e:41:a6:26:31:b9:
79:9b:61:92:fd:a5:a9:a9:be:6e:a0:f6:3e:5b:9c:
23:73:23:26:f4:8f:cb:76:86:da:55:08:51:46:2f:
bf:13:5d:94:50:64:ff:81:44:d8:e3:cc:be:05:c1:
80:8d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
05:69:82:EC:F9:92:E6:5C:14:E0:BD:40:5F:4B:77:E4:CC:89:5F:94
X509v3 Authority Key Identifier:
keyid:34:DD:43:29:61:AC:42:D6:44:AE:AF:34:B1:4A:EC:70:27:5B:06:A3
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/NN1DKWGsQtZErq80sUrscCdbBqM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NN1DKWGsQtZErq80sUrscCdbBqM.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PUMO/BWmC7PmS5lwU4L1AX0t35MyJX5Q.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv4:
124.150.129.0/24
Signature Algorithm: sha256WithRSAEncryption
5c:9f:ba:98:90:62:c9:07:95:51:43:68:b0:ac:0b:9a:43:fd:
b5:fc:fb:61:52:89:95:9f:ea:0d:b7:ff:ba:88:3a:99:23:81:
b9:f5:8c:04:16:93:81:5a:b0:8c:52:4d:6e:d3:ea:2a:32:af:
d1:eb:62:28:e3:0f:b6:3a:1d:75:bf:25:e8:9f:d1:ac:6f:6f:
79:15:be:a3:c9:6d:a8:5b:55:29:20:bd:da:a0:8e:98:cc:7e:
94:0e:d4:51:fa:3f:34:46:b6:a7:dd:6d:77:7a:10:fc:36:a4:
06:7e:02:c3:c6:97:86:ea:a8:a7:c2:c2:d7:a1:a7:b7:0f:1e:
1f:e4:5a:a6:95:bf:49:2b:f7:f7:06:ec:32:9c:5b:4d:ab:40:
03:ca:7b:ef:ad:9f:4c:0e:6c:8f:ca:f3:10:11:10:4f:85:87:
a7:77:c3:6c:4a:05:d9:8f:c8:2c:d2:3e:55:07:08:56:7a:a1:
7a:9f:73:48:b9:ee:a5:d6:26:77:5c:38:9f:e7:c6:35:5a:80:
c2:63:cc:d6:0b:66:f4:c6:35:41:2f:2b:5e:0d:3d:ba:d4:34:
22:3f:f8:5e:79:e8:37:77:8e:de:5e:ca:75:05:bd:7d:a1:4d:
4d:4d:dd:73:ed:7a:52:6d:fc:9d:ff:81:80:50:c1:5c:aa:37:
9d:69:b6:08
-----BEGIN CERTIFICATE-----
MIIEzjCCA7agAwIBAgICCJIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzRE
RDQzMjk2MUFDNDJENjQ0QUVBRjM0QjE0QUVDNzAyNzVCMDZBMzAeFw0yMDEyMTEw
ODUyMjJaFw0yMTA5MjkwOTUxMjNaMDMxMTAvBgNVBAMTKDA1Njk4MkVDRjk5MkU2
NUMxNEUwQkQ0MDVGNEI3N0U0Q0M4OTVGOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDExBC0Gx+FY22yTV8YfMoQlqkiihUB/1kAXGN+iObb4E/21xRb
hVHI9nr4eMbhVWa7qGUVY6h9LzJ1owMysK7MTuE8VwWCHg5JRQ9VsdH+Wq5ikaQh
lwhbHUyDTk7hsvTMouINvEjiwzJ6m4000c7N750HpUKIZbVxGoqXQbw50jJlzDai
sgNN59QAKE0/zeI4dZu8qJNDr1fKiUYU8BfhXJWq/8JeVp43GsW/yYoywfrH5sXn
EV8fAhQb/mRZ8JlrYvyKRFd/DO/fqW5BpiYxuXmbYZL9pampvm6g9j5bnCNzIyb0
j8t2htpVCFFGL78TXZRQZP+BRNjjzL4FwYCNAgMBAAGjggHqMIIB5jAdBgNVHQ4E
FgQUBWmC7PmS5lwU4L1AX0t35MyJX5QwHwYDVR0jBBgwFoAUNN1DKWGsQtZErq80
sUrscCdbBqMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g
TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFVNTy9O
TjFES1dHc1F0WkVycTgwc1Vyc2NDZGJCcU0uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ
BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB
L05OMURLV0dzUXRaRXJxODBzVXJzY0NkYkJxTS5jZXIwDgYDVR0PAQH/BAQDAgeA
MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu
dHduaWMudHcvcnBraS9UV05JQ0NBL1BVTU8vQldtQzdQbVM1bHdVNEwxQVgwdDM1
TXlKWDVRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy
ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAHyWgTAN
BgkqhkiG9w0BAQsFAAOCAQEAXJ+6mJBiyQeVUUNosKwLmkP9tfz7YVKJlZ/qDbf/
uog6mSOBufWMBBaTgVqwjFJNbtPqKjKv0etiKOMPtjoddb8l6J/RrG9veRW+o8lt
qFtVKSC92qCOmMx+lA7UUfo/NEa2p91td3oQ/DakBn4Cw8aXhuqop8LC16Gntw8e
H+RappW/SSv39wbsMpxbTatAA8p7762fTA5sj8rzEBEQT4WHp3fDbEoF2Y/ILNI+
VQcIVnqhep9zSLnupdYmd1w4n+fGNVqAwmPM1gtm9MY1QS8rXg09utQ0Ij/4Xnno
N3eO3l7KdQW9faFNTU3dc+16Um38nf+BgFDBXKo3nWm2CA==
-----END CERTIFICATE-----
Generated at Thu Jun 6 18:04:44 2024 by rpki-client on console-fra.rpki-client.org